Skip to content
Toggle Navigation
Kit ISO 27001
Ingeniería y Consultoría
Recursos
ISO 27001
ISO 27001 – GAP Analysis Tool
Ciberseguridad
Vulnerabilidades CVE
Blog
Contacto
Obtener el Toolkit
Toggle Navigation
Kit ISO 27001
Ingeniería y Consultoría
Recursos
ISO 27001
ISO 27001 – GAP Analysis Tool
Ciberseguridad
Vulnerabilidades CVE
Blog
Contacto
Obtener el Toolkit
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
CVE:
Aplicar
Borrar filtros
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2026-52692
2026-06-15
HIGH
7.5
Unauthenticated Sensitive Data Exposure in Affiliates Manager
CVE-2026-49781
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in OttoKit
CVE-2026-49780
2026-06-15
HIGH
8.8
Customer Privilege Escalation in Dokan
CVE-2026-49776
2026-06-15
CRITICAL
9.3
Unauthenticated SQL Injection in GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites
CVE-2026-49775
2026-06-15
MEDIUM
6.5
Unauthenticated Broken Access Control in Welcart e-Commerce
CVE-2026-49773
2026-06-15
MEDIUM
6.5
Subscriber Cross Site Scripting (XSS) in FV Flowplayer Video Player < 7.5.51.7212 versions.
CVE-2026-49770
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in WP Travel Engine
CVE-2026-49769
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in wpForo Forum
CVE-2026-49768
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in Happyforms
CVE-2026-49766
2026-06-15
CRITICAL
9.9
Subscriber Arbitrary File Deletion in WP User Manager
CVE-2026-49765
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms
CVE-2026-49764
2026-06-15
CRITICAL
9.8
Unauthenticated Broken Authentication in RegistrationMagic
CVE-2026-49763
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in Integration for Contact Form 7 HubSpot
CVE-2026-49112
2026-06-15
HIGH
7.5
Unauthenticated Path Traversal in Shared Files
CVE-2026-49110
2026-06-15
HIGH
7.5
Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce
CVE-2026-49109
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms
CVE-2026-49106
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in Integration for Contact Form 7 and Constant Contact
CVE-2026-49105
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms
CVE-2026-49104
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in Integration for Keap/infusionsoft and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms
CVE-2026-49085
2026-06-15
CRITICAL
9.8
Unauthenticated PHP Object Injection in WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms
CVE-2026-49083
2026-06-15
HIGH
7.5
Contributor Privilege Escalation in LatePoint
CVE-2026-49082
2026-06-15
HIGH
7.4
Subscriber Sensitive Data Exposure in Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons
CVE-2026-49078
2026-06-15
HIGH
7.5
Unauthenticated Other Vulnerability Type in WP Travel Engine
CVE-2026-49070
2026-06-15
HIGH
7.5
Unauthenticated Broken Access Control in Knit Pay
CVE-2026-49068
2026-06-15
HIGH
7.5
Subscriber Sensitive Data Exposure in Coupon Affiliates
CVE-2026-49067
2026-06-15
CRITICAL
9.3
Unauthenticated SQL Injection in Advanced 301 and 302 Redirect
CVE-2026-49066
2026-06-15
HIGH
7.5
Unauthenticated Sensitive Data Exposure in Conekta Payment Gateway
CVE-2026-49065
2026-06-15
HIGH
8.2
Unauthenticated Broken Access Control in Hippoo Mobile App for WooCommerce
CVE-2026-49063
2026-06-15
HIGH
7.3
Unauthenticated Privilege Escalation in Listdom
CVE-2026-49061
2026-06-15
HIGH
7.5
Unauthenticated Arbitrary File Download in WPC Product Options for WooCommerce
CVE-2026-49056
2026-06-15
HIGH
7.5
Unauthenticated Sensitive Data Exposure in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels
CVE-2026-49055
2026-06-15
HIGH
7.1
Unauthenticated Cross Site Scripting (XSS) in Drag and Drop Multiple File Upload – Contact Form 7
CVE-2026-49043
2026-06-15
MEDIUM
4.7
Unauthenticated Cross Site Request Forgery (CSRF) in WP Migrate Lite
CVE-2026-48970
2026-06-15
HIGH
8.1
Unauthenticated Broken Authentication in Really Simple SSL
CVE-2026-48966
2026-06-15
HIGH
7.1
Unauthenticated Cross Site Scripting (XSS) in Funnel Builder by FunnelKit
CVE-2026-48965
2026-06-15
MEDIUM
6.5
Subscriber Sensitive Data Exposure in XCloner
CVE-2026-48964
2026-06-15
HIGH
8.5
Subscriber SQL Injection in ELEX WordPress HelpDesk & Customer Ticketing System
CVE-2026-48889
2026-06-15
HIGH
8.8
Subscriber Privilege Escalation in Amelia
CVE-2026-48887
2026-06-15
MEDIUM
6.5
Unauthenticated Broken Access Control in JS Help Desk
CVE-2026-48886
2026-06-15
CRITICAL
9.3
Unauthenticated SQL Injection in JS Help Desk
CVE-2026-48885
2026-06-15
HIGH
7.1
Unauthenticated Cross Site Scripting (XSS) in HollerBox
CVE-2026-48883
2026-06-15
HIGH
7.5
Unauthenticated Broken Access Control in WPC Product Bundles for WooCommerce
CVE-2026-48882
2026-06-15
HIGH
8.5
Subscriber SQL Injection in WP Time Slots Booking Form
CVE-2026-48881
2026-06-15
CRITICAL
9.1
Unauthenticated Broken Access Control in TrueBooker
CVE-2026-48880
2026-06-15
MEDIUM
6.5
Subscriber Cross Site Scripting (XSS) in WP Job Portal
CVE-2026-48878
2026-06-15
MEDIUM
6.5
Subscriber Sensitive Data Exposure in Visual Link Preview
CVE-2026-48876
2026-06-15
HIGH
7.1
Unauthenticated Cross Site Scripting (XSS) in Stop Spammers
CVE-2026-48874
2026-06-15
HIGH
8.5
Subscriber SQL Injection in GamiPress
CVE-2026-48873
2026-06-15
HIGH
7.5
Unauthenticated Broken Access Control in Montonio for WooCommerce
CVE-2026-48872
2026-06-15
HIGH
7.5
Unauthenticated Sensitive Data Exposure in EmbedPress
« Anterior
Página 95 de 4528
Siguiente »
Page load link
Go to Top